» instaluj.cz - 2883.exe
Overview
Analysis
File Details
Programs (1)
Downloads (34)

instaluj.cz - 2883.exe

instaluj.cz akcelerátor

PS Media s.r.o.

This is a setup program which is used to install the application. The file has been seen being downloaded from www.instaluj.cz and multiple other hosts.

File name:

Publisher:

PS Media s.r.o. (signed and verified)

Product:

instaluj.cz akcelerátor

Description:

Download akcelerátor

Version:

2.1.0.0

MD5:

44c0a87689599f305da46c753209f277

SHA-1:

8cb885f9eaf7fbcc366a9332c5b9b27f6bd3f367

SHA-256:

38cc40a6e204411ec998803904bacc6f90d38b8fd400ab572deb832e6c0fee5d

Scanner detections:

1 / 68

Status:

Clean (1 probable false positive detection)

Explanation:

This is mosty likely a false positive detection, the file is probably clean.

Analysis date:

4/26/2024 7:08:33 PM UTC (today)

Scan engine

Detection

Engine version

IKARUS anti.virus

Trojan-Banker.Win32.Agent

t3scan.2.2.29

File size:

2.3 MB (2,426,216 bytes)

Product version:

2.1.0.0

Radek Szuman

Trademarks:

PS Media s.r.o.

Original file name:

instaluj.cz akcelerátor

File type:

Executable application (Win32 EXE)

Language:

English (United States)

Common path:

C:\users\{user}\appdata\local\microsoft\windows\temporary internet files\content.ie5\{random}\instaluj.cz - 2883.exe

Digital Signature

Signed by:

PS Media s.r.o.

Authority:

COMODO CA Limited

Valid from:

8/3/2012 2:00:00 AM

Valid to:

8/4/2014 1:59:59 AM

Subject:

CN=PS Media s.r.o., O=PS Media s.r.o., STREET=Oldrichovice 738, L=Trinec, S=CZ, PostalCode=73961, C=CZ

Issuer:

CN=COMODO Code Signing CA 2, O=COMODO CA Limited, L=Salford, S=Greater Manchester, C=GB

Serial number:

00A90261CA9C587C49C5A80CEBA70DE141

File PE Metadata

Compilation timestamp:

2/20/2014 1:17:52 PM

OS version:

5.0

OS bitness:

Win32

Subsystem:

Windows GUI

Linker version:

2.25

CTPH (ssdeep):

49152:HCyrYcaHG2Jgd2SxGUU31SIHZrHLn5CwptTvNZrHP:HrWHG21BjLnAwp3Zv

Entry address:

0x1E5E40

Entry point:

55, 8B, EC, 83, C4, F0, B8, C4, B2, 5D, 00, E8, 3C, 4C, E2, FF, A1, 94, 1D, 5F, 00, 8B, 00, E8, 48, CC, F3, FF, A1, 94, 1D, 5F, 00, 8B, 00, BA, BC, 5E, 5E, 00, E8, 2F, C6, F3, FF, 8B, 0D, E8, 1A, 5F, 00, A1, 94, 1D, 5F, 00, 8B, 00, 8B, 15, 18, 7A, 5D, 00, E8, 37, CC, F3, FF, 8B, 0D, FC, 19, 5F, 00, A1, 94, 1D, 5F, 00, 8B, 00, 8B, 15, C4, 69, 5D, 00, E8, 1F, CC, F3, FF, A1, 94, 1D, 5F, 00, 8B, 00, E8, 77, CD, F3, FF, E8, 06, 0C, E2, FF, 00, 00, B0, 04, 02, 00, FF, FF, FF, FF, 17, 00, 00, 00, 49, 00, 6E, 00... 
[+]

Developed / compiled with:

Microsoft Visual C++

Code size:

1.9 MB (1,984,512 bytes)

The file instaluj.cz - 2883.exe has been discovered within the following program.

Labtec WebCam by Labtec, Inc.

This is the driver and software utilities package for the Labtec WebCam. The driver software is required in order for the web cam to function properly and is the software that allows your computer to communicate with this hardware device.

www.labtec.com

6% remove it

The file instaluj.cz - 2883.exe has been seen being distributed by the following 34 URLs.

http://www.instaluj.cz/.../download.php?id=2995

http://www.instaluj.cz/.../download.php?id=1165

http://www.instaluj.cz/.../download.php?id=1246

http://www.instaluj.cz/.../download.php?id=5626

http://www.instaluj.cz/.../download.php?id=14765

http://www.instaluj.cz/.../download.php?id=8573

http://www.instaluj.cz/.../download.php?id=12598

http://www.instaluj.cz/.../download.php?id=1438

http://www.instaluj.cz/.../download.php?id=15635

http://www.instaluj.cz/.../download.php?id=14172

http://www.instaluj.cz/.../download.php?id=15713

http://www.instaluj.cz/.../download.php?id=16165

http://www.instaluj.cz/.../download.php?id=2649

http://www.instaluj.cz/.../download.php?id=16711

http://www.instaluj.cz/.../download.php?id=18611

http://www.instaluj.cz/.../download.php?id=11924

http://www.instaluj.cz/.../download.php?id=12810

http://www.instaluj.cz/.../download.php?id=13114

http://www.instaluj.cz/.../download.php?id=14996

http://www.instaluj.cz/.../download.php?id=11375

http://www.instaluj.cz/.../download.php?id=8486

http://www.instaluj.cz/.../download.php?id=18027

http://www.instaluj.cz/.../download.php?id=7942

http://www.instaluj.cz/.../download.php?id=11338

http://www.instaluj.cz/.../download.php?id=18093

http://www.instaluj.cz/.../download.php?id=17624

http://www.instaluj.cz/.../download.php?id=18396

http://www.instaluj.cz/.../download.php?id=1796

http://www.instaluj.cz/.../download.php?id=17099

http://www.instaluj.cz/.../download.php?id=9491

Latest 30 of 34 download URLs

Scan instaluj.cz - 2883.exe - Powered by Reason Core Security

herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.